Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
File: PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft (raw, json)
Hash identifier: XJQL5nOIfWiiXUIgx3zi05qa+EpbfSueGgjCDr+xF/E=
Subject key identifier: 97:38:50:B1:9F:0A:C9:E7:D3:31:9E:B8:34:0C:19:70:2D:52:0B:57
Authority key identifier: 3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54
Certificate issuer: /CN=3d8a553e05f0319bf452fa206c14ccda87304654
Certificate serial: 01963EAFA74FED21747B281BD1829E3F25B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
Manifest number: 0EFA
Signing time: Wed 16 Apr 2025 13:00:21 +0000
Manifest this update: Wed 16 Apr 2025 13:00:21 +0000
Manifest next update: Thu 17 Apr 2025 13:00:21 +0000
Files and hashes: 1: DTkkXlwWhjBYM7E-LiW8oFBHJjI.roa (hash: cFY01vIGbPqfZkXvhIFJCumwHCyy8N/DU0Sq4RcHFF0=)
2: F-tWEgFXNk85dgLML3v4CjJQNJI.roa (hash: KLZ5Ryps6kGcz+Vvj/Jt1Z7hc5rWBKew1n0+/36PDXM=)
3: PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl (hash: 7no4VgIwCsxaQei9wGA+UjjRm/3Lr/5Ab3Dz29TnrPI=)
4: PgYgGFElQ5q1n0LGZNZBRta_Qd4.roa (hash: 69CNmBY++9WnYAnXQ2BFsg1ecbH6Dliq6fHkpb2sLS4=)
5: c_bN0qeZ98kLK_mj8jLJCUhCuDk.roa (hash: 6teRR+6kz/ZhchnuaFTgHT4htaDxgUNTDG0QN1bVrBA=)
6: f3EQDAp01aGz4ygf13OnfmgCiyU.roa (hash: K8CWfwsXMWBETuXajB8y0tfb/O1sIwj6IWVOuqi5a0s=)
7: fnn2PBqaEkB-G35nmktclyOEVrM.roa (hash: z4jXqUIY33n8wsiIhXSfBMidI9YSQa2N+6IYP0IxcVM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3e:af:a7:4f:ed:21:74:7b:28:1b:d1:82:9e:3f:25:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d8a553e05f0319bf452fa206c14ccda87304654
Validity
Not Before: Apr 16 13:00:21 2025 GMT
Not After : Apr 17 13:00:21 2025 GMT
Subject: CN=973850b19f0ac9e7d3319eb8340c19702d520b57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:39:4c:de:cd:95:27:0b:f4:f4:b5:26:42:dd:
f2:7f:ed:4c:f1:dd:dd:a6:c5:d6:a8:c1:84:4e:dc:
98:7e:2a:cf:09:6a:6b:93:13:b5:9d:f4:42:e3:59:
07:5c:ce:46:4d:3d:49:ec:91:de:51:72:fd:a2:3f:
cf:c1:aa:3c:bc:e1:b4:61:52:70:95:c4:5f:70:76:
31:e3:ff:fb:88:71:37:ef:52:f1:c4:46:e8:01:5b:
1a:68:70:d1:ba:a5:d8:ab:87:2a:d2:36:f5:a9:08:
e2:62:99:1b:ed:58:19:34:84:e0:76:2b:cc:1f:52:
9f:ce:00:02:c5:29:97:f5:ff:f4:db:99:3b:39:fd:
d1:39:19:fa:4f:2e:05:a7:12:88:24:69:8d:b4:b0:
89:a4:1b:fb:2d:f5:60:0e:a4:56:9b:40:69:cc:ba:
cb:51:a2:12:15:ad:af:79:1d:93:91:5f:5d:45:92:
b2:7d:0a:64:df:22:d1:43:90:d6:29:50:11:1e:74:
04:84:4c:aa:f5:26:64:b4:e0:75:b2:bd:26:54:d1:
67:6f:16:b7:50:de:de:b0:ba:25:91:87:86:59:d5:
7f:30:81:0c:08:c9:cc:e8:ba:3a:cd:4a:87:24:e8:
7f:ba:2c:6e:e5:0d:63:12:9e:2a:79:b7:87:67:73:
c0:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:38:50:B1:9F:0A:C9:E7:D3:31:9E:B8:34:0C:19:70:2D:52:0B:57
X509v3 Authority Key Identifier:
keyid:3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:d3:0d:b9:c8:be:35:93:b1:8f:f7:8e:cd:28:1b:55:eb:e5:
f1:9a:19:95:c2:95:96:67:cf:95:3b:6a:db:0f:6c:7a:db:9d:
85:ea:f7:63:02:9b:cb:21:9e:23:63:b5:38:a0:6d:a8:a3:2b:
8f:15:4f:95:9e:ac:e0:52:b5:9d:f5:be:49:70:d5:06:44:a2:
61:87:fe:66:44:e4:0b:f1:b1:a4:dd:3f:5a:6a:92:5a:8b:20:
33:e9:5f:dd:c1:06:fe:a3:91:a1:63:f0:37:a9:a8:d0:7a:82:
c8:47:39:51:d7:07:54:8e:47:88:94:35:bf:24:30:7b:f5:48:
b9:ef:67:70:1c:52:f6:77:7f:02:62:80:c8:56:45:b1:da:19:
98:97:02:d7:a9:80:98:61:de:a8:b8:6d:0c:5e:47:b5:56:69:
80:61:fb:05:b3:57:e9:39:00:83:78:89:57:1e:a4:c7:15:51:
09:78:07:ff:74:aa:0c:82:7b:f3:44:44:79:5a:1c:3a:5d:84:
1a:16:94:bf:82:c3:7f:8e:bb:ed:7d:e8:c2:d3:fa:61:4d:67:
62:0d:08:42:31:2b:1f:bd:d5:b8:3e:39:07:85:fe:b3:31:c7:
5f:65:f5:d0:63:97:ec:b1:a3:a7:f5:3f:69:fa:9e:72:b7:2d:
ec:78:c0:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 19:18:05 2025 by rpki-client